CODEWITHSUNDEEP
google-cloud-platformapigee
MOE
MOE

Reputation: 849

make apigee x setup more secure

We plan to move from Apigee Edge to Apigee X. Unfortunately I still do have a open security related question where I do not find any suitable informations.

Do I need an additional service for Intrusion Detection like Cloud IDS or is that already built in Apigee X?

Upvotes: 0

Views: 198

Answers (2)

Pravin Kumar
Pravin Kumar

Reputation: 1

The intrusion detection is not enabled by default in Apigee X, but you can make use of some of the following GCP products:

  1. Cloud Armor https://cloud.google.com/security/products/armor?hl=en if in case you want to attach it as a security policies at the Load Balancer.
  2. Google has come up with Advanced API Security https://cloud.google.com/apigee/docs/api-security this can be used only for the APIs in APIGEE X, but that needs to be enabled explicitly and not available by default.

Hope this helps

Thanks

Upvotes: 0

Abhijith Chitrapu
Abhijith Chitrapu

Reputation: 537

For the best practices there could be no. of ways but, in general the service would be the same and Apigee x is different from Apigee in multiple ways.

  1. You can deploy 50 proxies to an environment.
  2. API proxies are immutable when they are deployed.
  3. You can do your own configuration/setup in Apigee.
  4. By using a customer encryption key all the KVM’s are encrypted.
  5. Admin authentication and Admin API endpoints are different.
  6. GCP IAM and RBAC govern admin identity and operators.

You can have look at this document.

Upvotes: 0

Related Questions